CVE-2024-42239 | Linux Kernel up to 6.6.40/6.9.9 bpf bpf_timer_cancel deserialization (936983051868/3e4e8178a866/d4523831f07a)
A vulnerability was found in Linux Kernel up to 6.6.40/6.9.9. It has been rated as problematic. Affected by this issue is the function bpf_timer_cancel of the component bpf. The manipulation leads to deserialization.
This vulnerability is handled as CVE-2024-42239. The attack needs to be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.